Date: Mon, 12 Mar 2012 15:20:57 -0500 From: Tim Daneliuk <tundra@tundraware.com> To: Thomas Dickey <dickey@radix.net> Cc: FreeBSD Mailing List <freebsd-questions@freebsd.org> Subject: Re: Editor With NO Shell Access? Message-ID: <4F5E5AA9.4050700@tundraware.com> In-Reply-To: <20120312201310.GA25349@saltmine.radix.net> References: <4F5E4C2A.1020005@tundraware.com> <20120312201310.GA25349@saltmine.radix.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On 03/12/2012 03:13 PM, Thomas Dickey wrote: > On Mon, Mar 12, 2012 at 02:19:06PM -0500, Tim Daneliuk wrote: >> I have a situation where I need to provide people with the ability to edit >> files. However, under no circumstances do I want them to be able to exit >> to the shell. The client in question has strong (and unyielding) InfoSec >> requirements in this regard. >> >> So ... are there editors without this feature? Can I compile something like >> joe or vi to inhibit this feature? > > man vi (see "-S") > It turns out you can still work around this if your know the trick. I am still researching this, but restricted vi appears to be compromised. -- ---------------------------------------------------------------------------- Tim Daneliuk tundra@tundraware.com PGP Key: http://www.tundraware.com/PGP/
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4F5E5AA9.4050700>